/*
 * Copyright © 2021-2022 Cask Data, Inc.
 *
 * Licensed under the Apache License, Version 2.0 (the "License"); you may not
 * use this file except in compliance with the License. You may obtain a copy of
 * the License at
 *
 * http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 * License for the specific language governing permissions and limitations under
 * the License.
 */

package io.cdap.cdap.security.authorization.ldap.role.searcher;

import java.security.cert.X509Certificate;
import javax.net.ssl.X509TrustManager;

/**
 * An implementation of {@link X509TrustManager} to ignore self signed certificates
 */
public class InsecureSSLTrustManager implements X509TrustManager {
  private final X509Certificate[] emptyCerts;

  public InsecureSSLTrustManager() {
    emptyCerts = new X509Certificate[0];
  }

  @Override
  public void checkClientTrusted(X509Certificate[] x509Certificates, String s) {

  }

  @Override
  public void checkServerTrusted(X509Certificate[] x509Certificates, String s) {

  }

  @Override
  public X509Certificate[] getAcceptedIssuers() {
    return emptyCerts;
  }
}
